[Resource Topic] 2021/346: Round-optimal Honest-majority MPC in Minicrypt and with Everlasting Security

Resource Cryptographic protocols
#1

Welcome to the resource topic for 2021/346

Title:
Round-optimal Honest-majority MPC in Minicrypt and with Everlasting Security

Authors: Benny Applebaum, Eliran Kachlon, Arpita Patra

Abstract:

We study the round complexity of secure multiparty computation (MPC) in the challenging model where full security, including guaranteed output delivery, should be achieved at the presence of an active rushing adversary who corrupts up to half of parties. It is known that 2 rounds are insufficient in this model (Gennaro et al., Crypto 2002), and that 3 round protocols can achieve computational security under public-key assumptions (Gordon et al., Crypto 2015; Ananth et al., Crypto 2018; and Badrinarayanan et al., Asiacrypt 2020). However, despite much effort, it is unknown whether public-key assumptions are inherently needed for such protocols, and whether one can achieve similar results with security against computationally-unbounded adversaries. In this paper, we use Minicrypt-type assumptions to realize 3-round MPC with full and active security. Our protocols come in two flavors: for a small (logarithmic) number of parties n, we achieve an optimal resiliency threshold of t\leq \lfloor (n-1)/2\rfloor, and for a large (polynomial) number of parties we achieve an almost-optimal resiliency threshold of t\leq 0.5n(1-\epsilon) for an arbitrarily small constant \epsilon > 0. Both protocols can be based on sub-exponentially hard injective one-way functions in the plain model. If the parties have an access to a collision resistance hash function, we can derive statistical everlasting security for every NC1 functionality, i.e., the protocol is secure against adversaries that are computationally bounded during the execution of the protocol and become computationally unlimited after the protocol execution. As a secondary contribution, we show that in the strong honest-majority setting (t<n/3), every NC1 functionality can be computed in 3 rounds with everlasting security and complexity polynomial in n based on one-way functions. Previously, such a result was only known based on collision-resistance hash function.

ePrint: https://eprint.iacr.org/2021/346

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .